[HTTPS-Everywhere] HSTS rules
sjw at gmx.ch
sjw at gmx.ch
Sun May 24 08:12:08 PDT 2015
Hi
How do we handle auto generated HSTS rules?
https://github.com/EFForg/https-everywhere/blob/master/src/chrome/content/rules/Onlime.ch.xml
is only enabled on Firefox, but the rule is in Firefox' preload list
too:
https://dxr.mozilla.org/mozilla-central/source/security/manager/boot/src/nsSTSPreloadList.inc#351
Should we delete such rules now or disable completely?
Regards
Jonas
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <https://lists.eff.org/pipermail/https-everywhere/attachments/20150524/82ded9fd/attachment.sig>
More information about the HTTPS-Everywhere
mailing list